feat google oauth

internal/service/user_service.go

@@ -2,10 +2,14 @@ package service
 
 import (
 	"context"
+	"encoding/json"
 	"errors"
 	"fmt"
 	"math/rand"
+	"net/http"
+	"net/url"
 
+	"gitea.com/texpixel/document_ai/internal/model/user"
 	"gitea.com/texpixel/document_ai/internal/storage/cache"
 	"gitea.com/texpixel/document_ai/internal/storage/dao"
 	"gitea.com/texpixel/document_ai/pkg/common"
@@ -159,3 +163,114 @@ func (svc *UserService) LoginByEmail(ctx context.Context, email, password string
 
 	return user.ID, nil
 }
+
+type googleTokenResponse struct {
+	AccessToken string `json:"access_token"`
+	IDToken     string `json:"id_token"`
+	ExpiresIn   int    `json:"expires_in"`
+	TokenType   string `json:"token_type"`
+}
+
+func (svc *UserService) ExchangeGoogleCodeAndGetUserInfo(ctx context.Context, clientID, clientSecret, code, redirectURI string) (*model.GoogleUserInfo, error) {
+	tokenURL := "https://oauth2.googleapis.com/token"
+	formData := url.Values{
+		"client_id":     {clientID},
+		"client_secret": {clientSecret},
+		"code":          {code},
+		"grant_type":    {"authorization_code"},
+		"redirect_uri":  {redirectURI},
+	}
+
+	resp, err := http.PostForm(tokenURL, formData)
+	if err != nil {
+		log.Error(ctx, "func", "ExchangeGoogleCodeAndGetUserInfo", "msg", "exchange code failed", "error", err)
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var tokenResp googleTokenResponse
+	if err := json.NewDecoder(resp.Body).Decode(&tokenResp); err != nil {
+		log.Error(ctx, "func", "ExchangeGoogleCodeAndGetUserInfo", "msg", "decode token response failed", "error", err)
+		return nil, err
+	}
+
+	if tokenResp.AccessToken == "" {
+		log.Error(ctx, "func", "ExchangeGoogleCodeAndGetUserInfo", "msg", "no access token in response")
+		return nil, errors.New("no access token in response")
+	}
+
+	userInfo, err := svc.getGoogleUserInfo(ctx, tokenResp.AccessToken)
+	if err != nil {
+		log.Error(ctx, "func", "ExchangeGoogleCodeAndGetUserInfo", "msg", "get user info failed", "error", err)
+		return nil, err
+	}
+
+	return &model.GoogleUserInfo{
+		ID:    userInfo.ID,
+		Email: userInfo.Email,
+		Name:  userInfo.Name,
+	}, nil
+}
+
+func (svc *UserService) getGoogleUserInfo(ctx context.Context, accessToken string) (*model.GoogleUserInfo, error) {
+	req, err := http.NewRequestWithContext(ctx, "GET", "https://www.googleapis.com/oauth2/v2/userinfo", nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header.Set("Authorization", "Bearer "+accessToken)
+
+	client := &http.Client{}
+	resp, err := client.Do(req)
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var userInfo model.GoogleUserInfo
+	if err := json.NewDecoder(resp.Body).Decode(&userInfo); err != nil {
+		return nil, err
+	}
+
+	return &userInfo, nil
+}
+
+func (svc *UserService) FindOrCreateGoogleUser(ctx context.Context, userInfo *model.GoogleUserInfo) (uid int64, err error) {
+	existingUser, err := svc.userDao.GetByGoogleID(dao.DB.WithContext(ctx), userInfo.ID)
+	if err != nil {
+		log.Error(ctx, "func", "FindOrCreateGoogleUser", "msg", "get user by google id error", "error", err)
+		return 0, err
+	}
+
+	if existingUser != nil {
+		return existingUser.ID, nil
+	}
+
+	existingUser, err = svc.userDao.GetByEmail(dao.DB.WithContext(ctx), userInfo.Email)
+	if err != nil {
+		log.Error(ctx, "func", "FindOrCreateGoogleUser", "msg", "get user by email error", "error", err)
+		return 0, err
+	}
+
+	if existingUser != nil {
+		existingUser.GoogleID = userInfo.ID
+		err = svc.userDao.Update(dao.DB.WithContext(ctx), existingUser)
+		if err != nil {
+			log.Error(ctx, "func", "FindOrCreateGoogleUser", "msg", "update user google id error", "error", err)
+			return 0, err
+		}
+		return existingUser.ID, nil
+	}
+
+	user := &dao.User{
+		Email:    userInfo.Email,
+		GoogleID: userInfo.ID,
+		Username: userInfo.Name,
+	}
+	err = svc.userDao.Create(dao.DB.WithContext(ctx), user)
+	if err != nil {
+		log.Error(ctx, "func", "FindOrCreateGoogleUser", "msg", "create user error", "error", err)
+		return 0, err
+	}
+
+	return user.ID, nil
+}